CVE-2026-3083
Multiple security vulnerabilities were discovered in plugins for the GStreamer media framework and its codecs and demuxers, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened. https://security-tracker.debian.org/tracker/DSA-6359-1
CSIRTS triage
- What
- Multiple vulnerabilities may result in denial of service or potentially the execution of arbitrary code when malformed media files are opened.
- Who is affected
- Deployments of gst-plugins-good1.0 are affected.
- Urgency
- Remediation is urgent due to the potential for arbitrary code execution.
- Action
- Update to the latest version of gst-plugins-good1.0.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch CVE-2026-3083
Get an email if CVE-2026-3083 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.
Exploitation outlook
- Low exploitation risk0.81% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 52% of all EPSS-scored CVEs.
Advisory coverage (2)
- high[UPDATE] [high] GStreamer: Multiple vulnerabilitiescert-bund · 2026-07-10
- unknownDSA-6359-1 gst-plugins-good1.0 - security updatedebian · 2026-06-21
External references
Embed the live status
— this badge updates automatically when the KEV or exploit status changes. How to embed it →
[](https://www.csirts.com/cve/CVE-2026-3083)